QwikSec

Security Database

CVE

CWE

Training

CVE-2023-29417

Published: Apr 6, 2023

Modified: Aug 2, 2024

PUBLISHED

Description

An issue was discovered in libbzip3.a in bzip3 1.2.2. There is a bz3_decompress out-of-bounds read in certain situations where buffers passed to bzip3 do not contain enough space to be filled with decompressed data. NOTE: the vendor's perspective is that the observed behavior can only occur for a contract violation, and thus the report is invalid.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://github.com/kspalaiologos/bzip3/issues/97

FEDORA-2023-3a821e6e73

vendor-advisory

FEDORA-2023-c08f9dfc16

vendor-advisory

FEDORA-2023-3589ad1c55

vendor-advisory

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.